Question 1

Match each item with a statement below.
a.threat
b.remote logon service
c.PING sweep
d.computer forensics
e.port scanner
f.handler
g.session hijacking
h.security policy
i.honeypot
-the process of examining the "footprints" that an attacker leaves behind

Accepted Answer

The answer of Match each item with a statement below.
a.threat
b.remote...

Question 2

In a(n) ____________________ attack, a service is inundated with requests, or malformed service requests, which cause a server to hang or freeze, preventing it from responding to input.

Accepted Answer

The answer of In a(n) ____________________ attack, a service is...

Question 3

Which type of attacks are designed to interrupt or completely disrupt operations of a network device or network communications?

Accepted Answer

DoS (Denial of Service) attacks are specifically designed to disrupt the normal operations of a network device or network communications by overwhelming the target with a flood of internet traffic.

Question 4

Match each item with a statement below.
a.threat
b.remote logon service
c.PING sweep
d.computer forensics
e.port scanner
f.handler
g.session hijacking
h.security policy
i.honeypot
-a manager system in a DDoS attack

Accepted Answer

The answer of Match each item with a statement below.
a.threat
b.remote...

Question 5

Match each item with a statement below.
a.threat
b.remote logon service
c.PING sweep
d.computer forensics
e.port scanner
f.handler
g.session hijacking
h.security policy
i.honeypot
-any activity that represents a potential danger or attack on a system or network

Accepted Answer

The answer of Match each item with a statement below.
a.threat
b.remote...

Question 6

Match each item with a statement below.
a.threat
b.remote logon service
c.PING sweep
d.computer forensics
e.port scanner
f.handler
g.session hijacking
h.security policy
i.honeypot
-an ICMP Echo-based operation used to locate active devices on a network

Accepted Answer

The answer of Match each item with a statement below.
a.threat
b.remote...

Question 7

Which of the following best defines an attempt to snoop inside traffic moving across the Internet to look for unprotected account and password information, or to obtain other sensitive information while it's in transit?

Accepted Answer

Packet sniffing is the process of intercepting and logging traffic that passes over a digital network or part of a network. It is used to capture data being transmitted over a network, including the internet, to look for sensitive information like account details and passwords.

Question 8

Match each item with a statement below.
a.threat
b.remote logon service
c.PING sweep
d.computer forensics
e.port scanner
f.handler
g.session hijacking
h.security policy
i.honeypot
-an IP attack technique whereby an impostor takes over an ongoing communications session between a client and server

Accepted Answer

The answer of Match each item with a statement below.
a.threat
b.remote...

Question 9

Match each item with a statement below.
a.threat
b.remote logon service
c.PING sweep
d.computer forensics
e.port scanner
f.handler
g.session hijacking
h.security policy
i.honeypot
-a special-purpose software tool that cycles through all possible TCP and UDP port addresses looking for open ports that then can be probed for access or exploited for vulnerabilities

Accepted Answer

The answer of Match each item with a statement below.
a.threat
b.remote...

Question 10

Match each item with a statement below.
a.threat
b.remote logon service
c.PING sweep
d.computer forensics
e.port scanner
f.handler
g.session hijacking
h.security policy
i.honeypot
-a computer system deliberately set up to attract, entice, and entrap would-be attackers, often by being made to appear part of a larger network

Accepted Answer

The answer of Match each item with a statement below.
a.threat
b.remote...

Question 11

Which of the following is unsolicited and unwanted software that takes up stealthy unauthorized and uninvited residence on a computer?

Accepted Answer

Spyware is designed to infiltrate or damage a computer system without the owner's informed consent. It often collects personal information or interferes with user control over the computer in ways that can be considered invasive or malicious.

Question 12

In how many minutes can any knowledgeable systems professional with the right toolkit break into just about any system if allowed unsupervised and unrestricted access to the computer on which such a system resides?

Accepted Answer

Given unsupervised and unrestricted access, a knowledgeable systems professional with the right toolkit can often break into just about any system within 15 minutes. This timeframe is a general estimation and highlights the importance of physical security and access controls in cybersecurity.

Question 13

Which of the following is the ability to verify that the data received did in fact come from the named source?

Accepted Answer

Data origin authentication ensures that the data received is indeed from the claimed source, verifying the identity of the data's origin.

Question 14

Match each item with a statement below.
a.threat
b.remote logon service
c.PING sweep
d.computer forensics
e.port scanner
f.handler
g.session hijacking
h.security policy
i.honeypot
-a document that represents the concrete manifestation of an organization's requirements for security practices, rules, and procedures

Accepted Answer

The answer of Match each item with a statement below.
a.threat
b.remote...

Question 15

____________________ attacks are DoS attacks that are launched from numerous devices.

Accepted Answer

The answer of ____________________ attacks are DoS attacks that are...

Question 16

Which of the following is an area that's accessible to both outsiders and insiders, but which establishes a buffer area between what's completely inside and outside a network boundary?

Accepted Answer

A DMZ, or Demilitarized Zone, is designed to act as a buffer zone between the public internet (outside) and the internal network (inside). It allows external users limited access to specific services while protecting the internal network.

Question 17

A(n) ____________________ consists of creating hashed values for all words in a specialized dictionary of terms, then comparing those values to the hashed values in password files.

Accepted Answer

The answer of A(n) ____________________ consists of creating hashed values...

Question 18

A(n) ____________________ model excludes users from access to resources, by default, and then adds whatever users need access to such resources as exceptions to the general exclusionary rule.

Accepted Answer

The answer of A(n) ____________________ model excludes users from access...

Question 19

A(n) ____________________ is a weakness in an information system, system security procedures, internal controls, or implementation that could be exploited by a threat source.

Accepted Answer

The answer of A(n) ____________________ is a weakness in an...

Question 20

Match each item with a statement below.
a.threat
b.remote logon service
c.PING sweep
d.computer forensics
e.port scanner
f.handler
g.session hijacking
h.security policy
i.honeypot
-any type of network service that permits users elsewhere on a network to use the network to log on to a system as if they were attached locally while operating remotely

Accepted Answer

The answer of Match each item with a statement below.
a.threat
b.remote...

Quiz 12: Securing Tcp/Ip Environments

Match each item with a statement below. a.threat b.remote logon service c.PING sweep d.computer forensics e.port scanner f.handler g.session hijacking h.security policy i.honeypot -the process of examining the "footprints" that an attacker leaves behind

In a(n) ____________________ attack, a service is inundated with requests, or malformed service requests, which cause a server to hang or freeze, preventing it from responding to input.

Which type of attacks are designed to interrupt or completely disrupt operations of a network device or network communications?

Match each item with a statement below. a.threat b.remote logon service c.PING sweep d.computer forensics e.port scanner f.handler g.session hijacking h.security policy i.honeypot -a manager system in a DDoS attack

Match each item with a statement below. a.threat b.remote logon service c.PING sweep d.computer forensics e.port scanner f.handler g.session hijacking h.security policy i.honeypot -any activity that represents a potential danger or attack on a system or network

Match each item with a statement below. a.threat b.remote logon service c.PING sweep d.computer forensics e.port scanner f.handler g.session hijacking h.security policy i.honeypot -an ICMP Echo-based operation used to locate active devices on a network

Which of the following best defines an attempt to snoop inside traffic moving across the Internet to look for unprotected account and password information, or to obtain other sensitive information while it's in transit?

Match each item with a statement below. a.threat b.remote logon service c.PING sweep d.computer forensics e.port scanner f.handler g.session hijacking h.security policy i.honeypot -an IP attack technique whereby an impostor takes over an ongoing communications session between a client and server

Which of the following is unsolicited and unwanted software that takes up stealthy unauthorized and uninvited residence on a computer?

In how many minutes can any knowledgeable systems professional with the right toolkit break into just about any system if allowed unsupervised and unrestricted access to the computer on which such a system resides?

Which of the following is the ability to verify that the data received did in fact come from the named source?

____________________ attacks are DoS attacks that are launched from numerous devices.

Which of the following is an area that's accessible to both outsiders and insiders, but which establishes a buffer area between what's completely inside and outside a network boundary?

A(n) ____________________ consists of creating hashed values for all words in a specialized dictionary of terms, then comparing those values to the hashed values in password files.

A(n) ____________________ model excludes users from access to resources, by default, and then adds whatever users need access to such resources as exceptions to the general exclusionary rule.

A(n) ____________________ is a weakness in an information system, system security procedures, internal controls, or implementation that could be exploited by a threat source.